The Mako Group builds Privacy Program frameworks that can be applied to emerging privacy regulations, such as GDPR and CCPA regulations. Key technical and organizational requirements we perform are:
-
Develop detailed data inventories following mapping data flows.
-
Create detailed mapping of personal information shared with third parties.
-
Identify channels for individuals to make personal data requests.
-
Create processes for responding to individuals’ queries concerning their personal data (within 30 days for the GDPR and within 45 days for the CCPA).
-
Training awareness to data security, as fines under both legislations will prove costly.
-
Perform Data Protection Impact Assessments to understand risk within your organization.
-
Assist marketing with “do not sell my personal information” buttons or websites, along with operational and procedural measures that need to be taken.